github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-13 21:36:00 +03:00
Code Issues Packages Projects Releases Wiki Activity
2,083 Commits 55 Branches 109 Tags
Commit Graph

2083 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Felipe Zimmerle
d780fd6290 Fix the parse to distinguish between @pm content and a variable 
Before this patch the parser was not understanding @pm content that
contains a variable.
 2016-01-12 13:59:27 -03:00
Felipe Zimmerle
702551ed42 Adds support to action `exec' to sec lang parser 2016-01-12 10:57:06 -03:00
Felipe Zimmerle
331df90bab Enables OWASP CRS optional_rules on becnhmark test case 2016-01-12 10:50:38 -03:00
Felipe Zimmerle
923620fbd0 Adds support to the action `allow' in the sec parser 2016-01-12 10:42:36 -03:00
Felipe Zimmerle
7901c2c899 Adds the actions SetSID and SetUID to the seclang parser 2016-01-12 10:34:33 -03:00
Felipe Zimmerle
ab92bed6fa Parser improvement: Supporting variables selection with regex 2016-01-12 09:59:33 -03:00
Felipe Zimmerle
3acc013e49 Improves the secrules parser 2016-01-11 17:50:35 -03:00
Felipe Zimmerle
ed13cab9f4 Adds script to download and configure benchmark script to use owasp v[3,2] 2016-01-11 17:50:15 -03:00
Felipe Zimmerle
f23908f145 Improves the secrules parser 2016-01-11 15:14:26 -03:00
Felipe Zimmerle
a4d8dfd5ee Adds ModSecurity recommended configuration file 2016-01-11 13:56:14 -03:00
Chaim Sanders
29680d69aa Updated geoip m4 file to support from path 2016-01-07 10:43:45 -03:00
Felipe Zimmerle
5273258261 Fix libxml configure script 2016-01-07 10:20:34 -03:00
Felipe Zimmerle
8c7b6199f7 Optimization on the tolower function 2016-01-07 09:16:06 -03:00
Felipe Zimmerle
0762892368 Small fix on pull request #982 2016-01-06 17:00:43 -03:00
Chaim Sanders
e38a468a26 Updated with suggestions from @zimmerle for code style 2016-01-06 17:00:43 -03:00
Chaim Sanders
b3ab9a4084 Support for correct implimentation of REQUEST_URI 2016-01-06 17:00:43 -03:00
Felipe Zimmerle
dd35b47764 Removes initcol debug messages 2016-01-06 17:00:43 -03:00
Felipe Zimmerle
a225f8b5b7 Fix SecResponseBodyMimeType test case 2016-01-06 17:00:43 -03:00
Chaim Sanders
6ebe6dfd87 Merge pull request #1038 from pwnbus/update_readme_shell_syntax 
Update readme to use shell syntax
 2015-12-29 15:21:38 -05:00
Brandon Myers
ebf2c88556 Update readme to use shell syntax 2015-12-29 15:19:15 -05:00
Felipe Zimmerle
decf04d264 Adds support to SecResponseBodyMimeType 2015-12-24 11:55:24 -03:00
Felipe Zimmerle
c2d9a153cb Adds support to afl fuzzer in the build system 2015-12-23 00:27:30 -03:00
Felipe Zimmerle
7cebc632e4 Adds Python bindings to the main ModSecurity git repo 2015-12-22 19:29:07 -03:00
Felipe Zimmerle
913e22a77d Adds initial support to initcol action 2015-12-22 12:10:15 -03:00
Felipe Zimmerle
fb3696ac04 Fix a few things to provide an easy interface for script bindings 2015-12-22 11:53:36 -03:00
Felipe Zimmerle
ac10d8863c Changes the operator evaluate method to only support two arguments 
Second argument can be empty if there is not need for it.
 2015-12-22 11:53:31 -03:00
Felipe Zimmerle
215c4d1071 Fix ARGS_POST and ARGS_GET variables order on the parser 2015-12-11 09:26:01 -03:00
Felipe Zimmerle
2a950a435b Fix various minor bugs in the regression test suite 
Now if a test fails it keep testing the others tests from the same
family. The output was also improved.
 2015-12-10 18:36:20 -03:00
Felipe Zimmerle
42ce0475b2 Coding style: changes the namespace in the comments 2015-12-10 13:20:32 -03:00
Felipe Zimmerle
0694cd30ca Adds support to libxml2 detection on the build system 2015-12-10 11:17:07 -03:00
Felipe Zimmerle
80b82d3707 Adds the Global LDADD option and fed according to the platform 2015-12-01 17:34:18 -03:00
Felipe Zimmerle
467c977afc Fix compilation without the GeoIP headers installed on the system 2015-12-01 15:27:14 -03:00
Felipe Zimmerle
854ca4c1cd Removes libinjection sources from the main project and add it as subfolder 
That way we can control the CFLAGS that will be sent to libinjection.
Avoiding, for instance, the utilization of c++11 on libinjection c code.
 2015-12-01 11:21:28 -03:00
Felipe Zimmerle
ea636e80ee Clarifies conditional by placing its parts into parentheses 2015-12-01 10:56:50 -03:00
Felipe Zimmerle
b5a43871e6 Changes library namespace from ModSecurity to modsecurity 2015-12-01 10:55:59 -03:00
Felipe Zimmerle
a69e49a1b0 Makes DebugLogs optional by compilation flag 2015-11-26 17:11:40 -03:00
Felipe Zimmerle
fbf8ea74f3 Makes YAJL dependency to be optional 2015-11-24 16:03:33 -03:00
Felipe Zimmerle
cf4377df70 Makes libCurl optional during configure 2015-11-24 15:06:34 -03:00
Felipe Zimmerle
d8793e444f Prints rules language tests version on the configure summary 2015-11-24 13:33:45 -03:00
Felipe Zimmerle
43c9b92163 Adds information about libInjection version at configure summary 2015-11-24 10:42:02 -03:00
ajrpayne
45711b5224 Update issue-960.json with 3rd test. 2015-11-23 10:08:21 -03:00
Felipe Zimmerle
d8361d57c6 Adds a regression test for issue #960 2015-11-20 15:24:09 -03:00
Felipe Zimmerle
8c0e96f311 Prints a fancy summary after the configure script 2015-11-20 13:40:02 -03:00
Felipe Zimmerle
18c862a84a Adds the concept of `resources' to the regression test utility 
If a given resource is not available the test is skipped. Useful
to test operators that depends on 3rd party libraries that may
not be available, for instance: GeoIP.
 2015-11-20 13:39:57 -03:00
Felipe Zimmerle
09a958544d Makes @geoLookup optional depending on the availability of libGeoIP 2015-11-20 11:09:05 -03:00
Felipe Zimmerle
21cae53d47 Improves the libgeoip detection during configure 2015-11-19 10:40:23 -03:00
Felipe Zimmerle
283c8c818d Fix some static analysis warnings 2015-11-18 13:56:31 -03:00
Felipe Zimmerle
ac61d1c40b Adds missing file 2015-11-18 13:30:59 -03:00
Felipe Zimmerle
de79848285 Code cosmetics 2015-11-18 12:59:08 -03:00
Felipe Zimmerle
3c45a57130 Fix regression tests structure : using method instead of protocol 2015-11-18 11:14:49 -03:00